February 26, 2024 by Paul G. | Security, ShieldNOTES

ShieldNOTES Ep#2: Your Monday Morning Security Notes

Shield Image

After great feedback from Ep#1, we’re continuing with our weekly ShieldNOTES series.

Although it’s been a quiet week, here are a few things to be aware of…

#1 – Google/Yahoo Email Might Cause You SPAM Trouble

They’ve started being super strict on what how they detect SPAM, so if you send critical emails from your WP sites you’ll want to sort it.

What do I need to do?
Make sure all domains are can send emails with clear, non-SPAM signals.

Can I ignore this?
If you don’t do the checks, you or your customers may not receive emails you’re expecting. Double-checking is good.

Editor Comment
We’ve been recommending PostmarkApp for years. They also have a free DMARC reporting service.

More Info →


#2 – Vulnerability in WordPress File Manager Pro

What do I need to do?
400,000+ sites use the free version, so some of you will likely have Pro. Upgrade asap to patch this.

How will I know I’m okay?
You’re all set if you’re running v8.3.5+

Editor Comment
With ShieldPRO’s autoupdates for vulnerable plugins, you’re sites would be automatically protected within 24hrs.

More Info →


#3 – Vulnerability in MasterStudy LMS Plugin

What do I need to do?
This has a critical severity of 9.3 (out of 10), so make sure to upgrade asap.

How will I know I’m okay?
If you’re running v3.2.6 you’re all set!

Editor Comment
With ShieldPRO’s autoupdates for vulnerable plugins, you’re sites would be automatically protected within 24hrs.

More Info →


#4 – Understanding WP Filesystem (from our blog)

Why do I need this?
You don’t want to try to understand how WP manages its filesystem when you’re stressed after something goes wrong. Better to take time to broaden your WP understanding during calmer times.

What should I do?
If you have a spare few minutes, have a read of our blog from the link below.

More Info →


It’s been a quiet week in WP security, which is a good thing! Let us know what you think, and suggestions on what you’d like us to cover.

Have a wonderful week!

Paul Goodchild
Shield Security for WordPress

Hello dear reader!

If you want to level-up your WordPress security with ShieldPRO, click to get started today. (risk-free, with our no-quibble 14-day satisfaction promise!)

You'll get all PRO features, including AI Malware Scanning, WP Config File Protection, Plugin and Theme File Guard, import/export, exclusive customer support, and much, much more.

We'd be honoured to have you as a member, and look forward to serving you during your journey towards powerful, WordPress security.

Try ShieldPRO Today →

ShieldPRO Testimonials
@grntrmd1800's Gravatar @grntrmd1800

Best Security Plugin I’ve Tried So Far

I’ve tried a handful of other security plugins (including the heavyweight, prominent ones) and this is the best security plugin I’ve found so far. It has effective spam protection and has helped me to mitigate brute-force login attempts on more than one occasion. The login security is top-notch and I…

@vipteam's Gravatar @vipteam

I feel guarded and protected

This is my experience: I have used Wordfence Security almost from its beginning on all of my websites. It worked perfectly until a few months ago. From lightweight plugin that turns into a monster. Plugin wants to write to the WP installation, even on the server side in php.ini. With…

@creacomdesign's Gravatar @creacomdesign

Very efficient

Great plugin, easy to configure and very efficient.

@pocbooks's Gravatar @pocbooks

Does what it says

One of the best!

Leave a Comment

Your email address will not be published. Required fields are marked *

Click to access the login or register cheese